mirai | 17a153fe801fd7bd7358f3883a1b16c79e1a9bf3975c4b6c4c1cc53e96c3b4c1 | Triage

Sharing

General

Target

b46b5d558645ec4eab85b98786b5c576_JaffaCakes118
Size

48KB
Sample

240821-wckppasbnh
MD5

b46b5d558645ec4eab85b98786b5c576
SHA1

fb058d4b27cce9cda356ba3a4c0d81bc5e34c6d9
SHA256

17a153fe801fd7bd7358f3883a1b16c79e1a9bf3975c4b6c4c1cc53e96c3b4c1
SHA512

8f007b471b412cab83b6ce9b0a5765f652ec16d7f9a9590c92ed10d4cb5bf0307f5bd3d21387d00ea67f613fd71f5fd6dc0001e3704db42cbe29b07a33da9f7a
SSDEEP

768:ZpkWWzNonwOTBgB6bP/r0gbFKof0WOrdKJ0szGActo:ZkNonwOTBcWP/rHbFRcWOxKJ0sSAc

Score

10^/10

mirai mirai linux

Malware Config

Extracted

Family

mirai

Botnet

MIRAI

Targets

- Target
  
  b46b5d558645ec4eab85b98786b5c576_JaffaCakes118
- Size
  
  48KB
- MD5
  
  b46b5d558645ec4eab85b98786b5c576
- SHA1
  
  fb058d4b27cce9cda356ba3a4c0d81bc5e34c6d9
- SHA256
  
  17a153fe801fd7bd7358f3883a1b16c79e1a9bf3975c4b6c4c1cc53e96c3b4c1
- SHA512
  
  8f007b471b412cab83b6ce9b0a5765f652ec16d7f9a9590c92ed10d4cb5bf0307f5bd3d21387d00ea67f613fd71f5fd6dc0001e3704db42cbe29b07a33da9f7a
- SSDEEP
  
  768:ZpkWWzNonwOTBgB6bP/r0gbFKof0WOrdKJ0szGActo:ZkNonwOTBcWP/rHbFRcWOxKJ0sSAc
Score

7^/10
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1